Date: Sun, 18 Jun 2000 19:18:35 -0700 (PDT) From: Kris Kennaway <kris@FreeBSD.org> To: Warner Losh <imp@village.org> Cc: "Jeroen C. van Gelderen" <jeroen@vangelderen.org>, Mark Murray <mark@grondar.za>, current@FreeBSD.ORG Subject: Re: mktemp() patch Message-ID: <Pine.BSF.4.21.0006181917510.20132-100000@freefall.freebsd.org> In-Reply-To: <200006190201.UAA52489@harmony.village.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, 18 Jun 2000, Warner Losh wrote: > In message <394124C3.221E61BC@vangelderen.org> "Jeroen C. van Gelderen" writes: > : Pseudo random numbers are so cheap (or they should be) that you > : just don't want to try and 'optimize' here. It is much better to > : be conservative and use a good PRNG until it *proves* to be very > : problematic. > > I disagree with this strongly. PRNG have proven time and time again > to weaken security due to their less than random nature. It is my > judgement that going down this path would be very bad, especially when > cryptographically strong random number generators exist and are part > of the base FreeBSD system. We should just use those... Actually thats what Jeroen was referring to - use of arc4random(). It's still a PRNG :-) Kris -- In God we Trust -- all others must submit an X.509 certificate. -- Charles Forsythe <forsythe@alum.mit.edu> To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0006181917510.20132-100000>